buffer size confusion in vastrock-huang/minivpn
Jun 5th 2022
an attempt to write 2000 into a buffer of 10 bytes, while
SSL_read does not add a zero at the end.
Proof of Concept
char buf; SSL_read(ssl,buf,BUFF_SIZE); int virtualIP = atoi(buf);...
by changing the network data, you can access remote code execution. gives out that the application is building vpn, the information is also very sensitive.